$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/437d3c38-c370-4afe-a444-07ee5ee1ed9f.roa File: 437d3c38-c370-4afe-a444-07ee5ee1ed9f.roa (raw, json) Hash identifier: jDaWlwZk+Eg6FIFbgvu7oe5NASZzBc4NI+6edl6Nmjs= Subject key identifier: 47:FE:6C:64:F7:23:32:59:96:E3:10:45:CB:77:CB:81:8D:56:D1:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7666BB08BA645C7FC2B714073EAFB79AF1B48208 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/437d3c38-c370-4afe-a444-07ee5ee1ed9f.roa Signing time: Wed 13 Aug 2025 00:11:50 +0000 ROA not before: Wed 13 Aug 2025 00:11:50 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff1:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:66:bb:08:ba:64:5c:7f:c2:b7:14:07:3e:af:b7:9a:f1:b4:82:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:11:50 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=57a23007a008d957632b67ba08f0ab036231ba1fb1ece6109f7f13975c2891b2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:60:7b:bc:0f:4c:d7:3a:a0:4b:47:92:b7:39: 8b:d9:00:93:fa:a5:c0:3f:03:ce:53:79:ee:96:71: 28:15:fb:e3:25:cf:07:ed:cd:cb:ce:25:51:27:db: 36:b6:62:37:f5:8f:02:2e:14:84:75:a9:61:e1:ae: 64:22:dc:2d:7d:75:3f:48:cf:95:26:fc:ea:42:6b: 97:4b:ef:8c:c5:d2:66:7b:db:c5:69:25:16:89:a4: 0f:11:97:a5:2a:a1:87:3a:ce:4c:6c:4e:62:60:a6: 9d:86:1f:86:7b:87:76:ec:2c:3c:61:c4:f4:69:b5: 75:47:74:18:2b:11:20:0c:e0:1a:29:89:12:12:2f: a3:4c:95:2a:b6:93:09:5a:3f:4c:64:8d:2e:6d:9f: 35:ad:a2:e5:d3:3d:bf:58:4e:67:39:32:63:39:f1: 3b:60:10:21:2a:b2:05:b1:e5:77:6e:f3:45:20:ca: 13:f2:c4:91:91:76:c2:16:ad:c0:47:7b:00:a9:6d: ae:fc:ea:4c:d6:0b:1c:d5:e8:17:e9:72:fa:c0:fa: e0:3d:78:57:c1:e8:a2:c4:04:01:40:4a:a4:02:8b: d4:0e:a8:6b:be:45:12:04:04:0c:6f:ee:21:fd:2b: c4:96:37:1f:7b:61:2c:a0:58:19:2a:49:af:cc:d6: 59:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FE:6C:64:F7:23:32:59:96:E3:10:45:CB:77:CB:81:8D:56:D1:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/437d3c38-c370-4afe-a444-07ee5ee1ed9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:2000::/40 Signature Algorithm: sha256WithRSAEncryption cd:36:41:83:4c:26:35:e8:1d:09:4a:6d:7d:6d:0c:65:b5:de: 83:36:65:75:dd:94:61:e0:32:bb:09:cf:ef:fd:bf:99:54:fa: 11:44:be:99:f3:60:17:fd:44:30:7d:df:9d:38:e9:6b:58:e5: 72:dc:3d:bf:f0:15:9b:37:0d:8e:da:91:bd:e4:12:87:27:fb: 0d:b7:86:0c:45:b0:64:a5:86:7e:fe:9e:31:05:eb:97:63:20: a4:33:53:9f:54:13:f3:0e:04:ef:50:37:eb:3b:a7:c8:1e:53: fe:38:31:7c:78:d9:d0:aa:c8:0d:fe:34:74:84:3c:ad:4d:d2: 36:ea:b9:8c:62:61:fc:a6:aa:4c:e7:f0:35:2c:1e:e3:9f:50: 25:4c:cb:88:fe:94:6e:b8:a0:b6:76:6c:b4:49:42:d7:ad:fd: 56:bc:4f:3a:f0:46:a6:17:f8:fb:a6:bf:2a:f4:46:1e:d2:4e: 69:0d:b1:f6:a6:ba:9b:b6:d5:94:33:9c:a4:1d:0d:56:ab:27: dd:1d:ba:2f:5b:90:3d:20:9d:64:d2:5a:25:80:3c:58:96:17: a4:90:f6:d1:a6:85:18:03:0f:35:7f:f4:64:2e:eb:f0:91:4f: 80:29:af:f5:6d:cc:67:04:ad:da:4a:02:87:85:33:65:62:26: a8:72:4b:79 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdma7CLpkXH/CtxQHPq+3mvG0gggwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMTUwWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2EyMzAwN2EwMDhkOTU3NjMyYjY3YmEwOGYwYWIwMzYy MzFiYTFmYjFlY2U2MTA5ZjdmMTM5NzVjMjg5MWIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNYHu8D0zXOqBLR5K3OYvZAJP6pcA/A85Tee6WcSgV++Ml zwftzcvOJVEn2za2Yjf1jwIuFIR1qWHhrmQi3C19dT9Iz5Um/OpCa5dL74zF0mZ7 28VpJRaJpA8Rl6UqoYc6zkxsTmJgpp2GH4Z7h3bsLDxhxPRptXVHdBgrESAM4Bop iRISL6NMlSq2kwlaP0xkjS5tnzWtouXTPb9YTmc5MmM58TtgECEqsgWx5Xdu80Ug yhPyxJGRdsIWrcBHewCpba786kzWCxzV6BfpcvrA+uA9eFfB6KLEBAFASqQCi9QO qGu+RRIEBAxv7iH9K8SWNx97YSygWBkqSa/M1lkzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUR/5sZPcjMlmW4xBFy3fLgY1W0bUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzN2QzYzM4LWMzNzAtNGFmZS1hNDQ0LTA3ZWU1ZWUxZWQ5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xIDANBgkqhkiG9w0BAQsFAAOCAQEAzTZBg0wmNegdCUptfW0MZbXe gzZldd2UYeAyuwnP7/2/mVT6EUS+mfNgF/1EMH3fnTjpa1jlctw9v/AVmzcNjtqR veQShyf7DbeGDEWwZKWGfv6eMQXrl2MgpDNTn1QT8w4E71A36zunyB5T/jgxfHjZ 0KrIDf40dIQ8rU3SNuq5jGJh/KaqTOfwNSwe459QJUzLiP6UbrigtnZstElC1639 VrxPOvBGphf4+6a/KvRGHtJOaQ2x9qa6m7bVlDOcpB0NVqsn3R26L1uQPSCdZNJa JYA8WJYXpJD20aaFGAMPNX/0ZC7r8JFPgCmv9W3MZwSt2koCh4UzZWImqHJLeQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:53 2025 by rpki-client